Developer Security
6 focused explainers for readers who want the useful answer, a clear example, and a practical next step.
Restrict who can dismiss pull request reviews with GitHub rulesets
Control who may dismiss pull request reviews in GitHub rulesets, preserve emergency access, audit changes, and prevent approval bypasses.
GitHub secret scanning extended metadata and multipart validation explained
Use secret scanning ownership, expiry, project context, and multipart validation to prioritize leaked credentials and remediate faster.
GitHub innersource security advisories: private vulnerability workflow
Set up GitHub innersource security advisories for privately shared code, coordinated fixes, affected repositories, and controlled disclosure.
GitHub Code Quality organization targeting: a safe rollout plan
Roll out GitHub Code Quality at the organization level with repository targeting, baseline checks, ownership, and measurable adoption.
GitHub secret scanning detector names explained: patterns vs AI detection
Understand GitHub’s renamed secret scanning detector types, how pattern and AI detection differ, and how to triage each alert correctly.
CodeQL AI prompt injection detection: what the new query catches
Learn how CodeQL detects untrusted data flowing into AI system prompts, where the query helps, and what developers still need to review manually.